[Help Welcome] KVM Development - staying the course

Patrick · July 10, 2019, 7:12am

This More security features on Buster by HulaHoopWhonix · Pull Request #87 · Kicksecure/libvirt-dist · GitHub i.e. setting from

   <backend model='random'>/dev/random</backend>

to

   <backend model='random'>/dev/urandom</backend>

has to be carefully considered.

Is this recommended / discussed somewhere?

What would happen in the guest if /dev/random on the host (“backend”) blocks?

With havegend and/or jitterentropy-rngd installed on the host, neither /dev/random nor /dev/urandom seem to ever block.

Even without havegend and/or jitterentropy-rngd installed on the host, are inside VM issues, i.e. /dev/random entropy blocking/exhaustion issues ever been reported or reproducible?

If Entropy, Randomness, /dev/random vs /dev/urandom, Entropy Sources, Entropy Gathering Daemons, RDRAND i.e.

/dev/random vs. /dev/urandom

This debate comes from a misconception by the Linux manual writer. […]

is true, then /dev/random vs. /dev/urandom does not really matter and /dev/urandom would be secure either way.

On the other hand Myths about /dev/urandom - Thomas' Digital Garden while “being a strong critic of using /dev/random” still concludes

Linux’s /dev/urandom happily gives you not-so-random numbers before the kernel even had the chance to gather entropy. When is that? At system start, booting the computer.

And I like to add: “When is that? At system start, booting the computer, or when there is a bug.”

It depends on how much entropy KVM reads from the virtio-rng backend and when that is happening. Since there probably never were blocking issues due to use of /dev/random instead of /dev/urandom (?), /dev/random seems better to me.

HulaHoop · July 10, 2019, 12:19pm

It is recommended in the libvirt manual and is now the default choice for new VMs after backend support was added. The blocking behavior was a big problem.

However, the recommended source of entropy is /dev/urandom (as it doesn’t have the limitations of /dev/random .

In scenarios where a user is running a headless workstation with minimal hardware attached it can be. Some daemons that require entropy can take forever to start if they depend on random.

Both statements are true and there is no contradiction. The only serious difference was during a machine’s early boot. Once started there is no benefit from using random over urandom. Its blocking behavior is sort of a DoS problem where someone can trigger its blocking by drawing entropy in a way that causes it to block. Rate limiting was necessary to stop this but not with urandom.

The difference in practice (random number quality wise) is none because Whonix VMs don’t start early enough in the host boot cycle for it to matter. The blocking action of /dev/random is a performance concern.

It is unlikely most of our users know about jitternetropy to install it on their hosts and so using random over urandom can cause hanging of processes.

HulaHoop · July 11, 2019, 2:42pm

Attempting build, git only shows tags in the version 10 series. Any suggestions what to fix?

Patrick · July 11, 2019, 6:07pm

HulaHoop via Whonix Forum:

Attempting build, git only shows tags in the version 10 series. Any suggestions what to fix?

Upstream git changed the behavior for git tag and others to
scrolling by default (using arrow keys or so). Similar to (GNU) more
command line utility. So just try pressing arrow keys or git --no-pager tag or git tag | cat.

(Btw also systemd supports --no-pager for example sudo systemd status --no-pager. “Pager by default” seems to be a thing nowadays.)

HulaHoop · July 11, 2019, 8:01pm

OK I’ll wait for a new developers point release that includes my latest changes before doing it.

Patrick · July 12, 2019, 8:15am

HulaHoop via Whonix Forum:

OK I’ll wait for a new developers point release that includes my latest changes before doing it.

Not advisable to use developers-only releases, test them and release as
stable:

packages might have commits without having bumped version number yet.

Other things unfit for release as of time for writing examples:

Restrict root access - #27 by madaidan

HulaHoop · July 12, 2019, 12:22pm

Is the whonix-libvirt package changes part of 15.0.3.3-stable then?

Patrick · July 12, 2019, 3:34pm

No.

Merged in master but not included in any tag.

Patrick · July 12, 2019, 4:37pm

Could you review KVM: Difference between revisions - Whonix please?

HulaHoop · July 12, 2019, 10:58pm

Wow what a great cleanup effort. Accepted. Thanks to the author.

Patrick · July 13, 2019, 9:42am

More edits.

KVM: Difference between revisions - Whonix

Patrick · August 23, 2019, 12:39pm

Could you please update Whonix ™ for KVM?

no more use of keyservers due to gpg --recv-keys fails / no longer use keyservers for anything
more similar to Whonix ™ Signing Key (most importantly using that super long, unfortunately required, gpg command which is the only one which shows the full key id.

This

gpg --keyid-format long --import --import-options show-only --with-fingerprint hulahoop.asc

HulaHoop · August 24, 2019, 4:33pm

That command would need me to refer to a download link for my key on the Whonix website. I just tested the current keyserver command without problems though, so why is it needed (besides unifying instructions)?

0brand · August 24, 2019, 5:09pm

From my limited experience there can be issues with downloading keys from one day to the next regardless of which keyserver is used. Users should have no issues with downloading hulahoop.asc . If they do, it would also mean they would not be able to download the ova images either . I think the push is to try to find a more reliable and just as secure way to verify whonix images then what is currently available.

Last post on that topic
From: Patrick

Ticket created just now.

stop using gpg keyservers / provide OpenPGP keys for download as files from torproject.org
https://trac.torproject.org/projects/tor/ticket/31090#ticke

HulaHoop · August 24, 2019, 5:14pm

I see, OK let me know if/where my key is on the site and I’ll change things. In the long term, we can’t afford to ignore the key management infrastrucutre completely becuase that just puts too much trust and availability in one place (our site).

Patrick · August 24, 2019, 5:30pm

For Whonix software downloads? I don’t see any advantage of using keyservers even if they are functional. Users get documentation, software downloads, signatures from whonix.org. So can as well add keys there for completion. Doesn’t improve trust or availability by using keyservers for OpenPGP keys. Well, OpenPGP keys can still be additionally uploaded to keyservers but that’s just a bonus.

For the more general discussion besides Whonix software downloads, see:

0brand · August 24, 2019, 5:43pm

From what is can see this is the only spot. Although it has both hulahoop.asc and Cli download instructions.

https://www.whonix.org/wiki/KVM#Verify_the_Whonix_.E2.84.A2_Images

HulaHoop · August 24, 2019, 5:49pm

Thanks. Just discovered the wiki blocks .asc uploads.
@Patrick can you please delete my HulaHoop porfile page on the wiki?

EDIT:
KVM instructions updated.

Patrick · August 24, 2019, 11:55pm

Can’t see. Link?

Patrick · August 25, 2019, 7:50am

and import:

gpg --keyid-format long --import --import-options show-only --with-fingerprint hulahoop.asc

That is wrong. That ocmmand does not import. It shows the fingerprint. Import is a separate step after checking the key fingerprint. See Whonix ™ Signing Key